

So 

Or- 

i 



CO o 

t 
Q 



t 



a: 



z r 

o 

o 



CO Ql 

t t 

co o 

CO H- 



^■1 



Q_ 
< 

001 

CLb2 



o 
o 





□ □□□ 

□ □□□ 

□ □□□ 



CO 



CO 



co y 

LLI CL 

?= < 



O llP 
o 

— i i — 

CL. 2: 
CL LU 
< ^ 
CO z 
co o 

LU CC 

—J ^ 

UJ > 

ct: ^ 

— LU 



O ST 

CO 

co g: 

LU " 
CO -J 

co o 

LU O 

— 1 

LU O 

c£ a: 



co 



CO 
CO 



o 
o 

§ 



O 

53 



CO 



O 



O 
CM 
LO 



O 
CO 
LO 



£3 

o t 
a. § 

il 

CO o 

CO LU 
LU CO 

Lu c£ 

UJ 

5§ 



cr lu 

I I I —J 



CO 



o 

LO 



Dl 
Q 



CO 

1 



CO 

o 

CL. 

I 

o 

Q 
Q. 

o~ 

Q_ 

Q 

O 



CO 
C£ 
LU 

ct: 

55 

CQ 

CO 
CO 



CL. 

o 



CO 

1 



or 

Q_ LU 

CO >- 

I 3 



Q 
<" 

Q 

O 

CD 

CO 

Q 

CO 

o 

Q 

CO 
CO 



CO 
CO 



O UJ 



o 

LO 
LO 



o 

CD 
LO 





LU 

% 

CO m 
Ez CD 
ID 

o 

LU 
CO 



V LU 

o 5? 01 

PUJ COl 



LU 
I — 

CO 
>- 
CO 



Ol 

I s - 
CD I 



co cog 



CM! 

M 
COl 



o 



co> 

o 
o 



CDl 



CO 



o ^ 



Ol 
CD 



CDl 
LU CO 
CO 



CO 



LOI 
00 

cdI 



CD I 



2 




CO 

CD 



O 
O 
CD 









-1 




CDl 







CO 
CO 




O 



ED 



r-x CO LU 



2 < 2002 g) 



700 



RECEIVE SECURITY 
FEATURE INFO ON 
PORT 9208 



-715 



NEGOTIATE WTLS 
SECURITY FORMAT 



-720 



SELECT CONVERSION 
FROM NEGOTIATED 
FORMAT TO PLAIN DATA 



-725 



RECEIVE 
ENCRYPTED DATA 



-730 



CONVERT 
ENCRYPTED DATA 
TO PLAIN DATA 



-735 



( START y 



701 



CONFIGURE 



LISTEN ON 
CONFIGURED PORTS 



-705 



-710 



RECEIVE SECURITY 
FEATURE INFO ON 
PORT 443 



-740 



NEGOTIATE SSL 
SECURITY FORMAT 



-745 



SELECT CONVERSION 
FROM NEGOTIATED 
FORMAT TO PLAIN DATA 



-750 



RECEIVE 
ENCRYPTED DATA 



-755 



CONVERT 
ENCRYPTED DATA 
TO PLAIN DATA 



-760 



PROVIDE 
PLAIN DATA 



i 

( \ 



770 



775 



765 



RECEIVE PLAIN 
DATA ON 
PORT 80 



WTLS SECURITY PROTOCOL ARCHITECTURE 
800 ^ 



HANDSHAKE 


ALERT 


APPLICATION 


CHANGE 


PROTOCOL 


PROTOCOL 


PROTOCOL 


CIPHER SPEC. 








PROTOCOL 


810 


820 


830 










840 




RECORD PROTOCOL 






850 













FIG. 8 



ACCESS 
DEVICE 
910 



WTLS HANDSHAKE 
900 



1 



920 



DATA 
CENTER 
970 



CLIENT HELLO 



SERVER HELLO 
SERVER CERTIFICATE* 
SERVER KEY EXCHANGE* 
CERTIFICATE REQUEST* 
SERVER HELLO DONE 

CLIENT CERTIFICATE* 
CLIENT KEY EXCHANGE* 
CERTIFICATE VERIFY* 
[CHANGE CIPHER SPEC] 
FINISHED 



•930 



•940 



[CHANGE CIPHER SPEC] 
FINISHED 



•950 



APPLICATION DATA 



960 



FIG. 9 



FIG. 10 



CLIENT HELLO MESSAGE 
1000 



CLIENT SECURITY CAPABILITY 
1010 



RANDOM STRUCTURE 
1020 



SESSION IDENTIFICATION 
1030 



SUPPORTED CRYPTOGRAPHIC OPTION 
1040 



COMPRESSION METHOD 
1050 




I"'-' 



8go o 

POO CM 

a. co 



o 
o 



CO 
CO 

o 
J— 

o 

LU 

-J 

LU 
CO 







o 


o 


h- 


1— 


o 


o 

LU 


LU 
I 


—J 


LU 


1 1 l LO 


CO 


CO CO 


CO 


o 2: 


S3 


LU LU 




i 




IRE 




^ oo 








1 — O 


LU 


oo Q- 


JO 




1 — 




oo 

CD 




CVJ 
CO 


O LJJ 




Q_ 




LU 


o 


LU 


CL 


CO 


Ll_ 


—I 




LU 



r 



go 



o 
!< 

O II 



o 



oo 

CN| 
C7> 



< o- 

-P LU 

Q 1 

LU 
CO 



LU I — 



CO 



CO ^ 
CO O 



O. 



CO 




o c> 

C£ LU 
Q_ CO 



^LU§ 



CO 

or 



CO 



o 
o 

o 



CO h- 

°2 O 
g uj 

^ ^ ^ 

LU | — q 

^ ^ UJ 
I LU 

Lju — LU 
ii LU CO 
— CO —{ 



Ol 

col 



CN| 

^ LU y 

Z ^ ^ 

LLi K- Q 

^ CNJ LU 
' Ll_ q£ 

LjZ — LU 
n LU CO 
— CO — ! 



o 

LO 



!< o ' 
@!«* 

a: O 

O — 

LU 

CO 



n 



CNJ 

CO 



CO 



CO 
CO 



CNJ 

CO 




CNl 

CO 



CD 



til *^ — 



CO 




r 



■z. 01 

UJ o 

O CN 

I 



O 

CN 
CM 



i 






i 


i 


PORT/FEATURE 


WTLS DATA 




PORT/FEATURE 


SSL DATA 




r 




i 


f 














ITCH/ROUTE 


1210 








IMS 










SECURITY SYSTEM 
1300 



FRONT PANEL 
INTERFACE 
1310 



1311 



1312 1313 1314 



1315 



1316 



1317 



POWER ERROR OVERLOAD ACTIVITY NETWORK LINK INLINE SERVER LINK 
(GREEN) (RED) (AMBER) (GREEN) (GREEN) (GREEN) (GREEN) 

(° ° ° -9) FALL-THROUGH 1318 



®\ %%%% o 7 ® @ y%%°.%y @ 

CONSOLE AUX 
1319 CONSOLE 
1320 



^^^^^^^^ 



NETWORK LINK 
(RJ45) 1321 



SERVER L 



NK 



(RJ45) 1322 



1323 
RESET 



BYPASS 
1324 




PROCESSOR 



1360 



MAIN MEMORY 
1370 



SELECTION 
INSTRUCTIONS 
1372 



CONVERSION 
INSTRUCTIONS 
1374 



READONLY 
MEMORY 

1380 



SECURITY 
HARDWARE 

1390 



FIG. 13 



